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SUMMARY 

PURPOSE: (TS//SI//NF) To obtain SID approval for Cryptanalysis and Exploitation Services (CES) 
c^'ptaimlysts at the NS A/CSS Crypto logic Centers (CCs) in Texas, Georgia, and Hawaii, who are 
under direct DIRNSA authority, to access and process NSA SIGINT FISA and CT FBI SIGINT 
FISA data that is stored in databases in CES at NSAW, This will set a precedent for access to NSA 
FISA material outside of NSAW, 

BACKGROUND: (TS//SI) As part of CES's strategy for the Extended Enterprise bmWout, 
cryptanalysis efforts at the cryptologic centers in Texas, Georgia, and Hawaii will serve as 
transparent extensions of the eryptana lysis mission performed by CES in the Office of Target 
Pursuit's exploitation branches (S31H2, S31X43, 331131, and S3 1133) at NSAW, Analysts at the 
cryptologic centers wili become part of a virtual team with NSAW analysts. They will access data 
that is stored within the CES firewall and will use cryptanalytic procedures and tools, also within 
the CES firewall, b3 r way of a VPN capability that ensures that security is not compromised and 
that the data and tools accessed cannot get out to the local network. The priorities of cryptanalytic 
missions will continue to be set in conjunction with mission elements at NSAW and the Cryptologic 
Centers as appropriate, 
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(TS//SI) Cryptanalysts at the cryptologic centers will access data that is stored in the following 
databases at NSAW: 

FOURSCORE - fax and DNI data, some of which is NSA or FBI FISA-derived 

ZAP - text, some of which is NSA or FBI FISA-derived 

CAPRICORN - voice, some of which is NSA or FBI FISA-derived 

SOAPOPERA - voice, end product, SRI information, some of which is NSA or FBI FISA-derived 

(TS//SI) These databases contain raw data, including enciphered collection, and, when exploitation 
is possible, decrypted plain text. Some of the data in the databases is NSA FISA-derived or FBI CT 
FISA-derived. While not every database contains FISA-derived material, it is reasonable to expect 
that analysts at the CCs wall perform mission with agility, moving across targets and databases as 
mission demands, and that sometimes that will mean accessing data within a database that does 
contain FISA-derived data. Access to these databases is restricted to analysts who hold the 
RAGTIME ECI, have a specific 'need to know 1 about the data stored within the databases, and who 
are authorized by the data owner. For some years CES has been the recipient of improperly 
marked/classified data but all analysts have been and are aware that data marked with the SIGAD 
US984J and case notation XX.SQF* is FBI FISA data, and that all other data marked with SIGAD 
US-984* is NSA FISA data. CES believes that the appropriate remedy is to correct the 
classification of the data before it is fed into our systems. This is an ongoing issue which should not 
impede the approval of this SPF but the matter should be addressed. CES will ensure that all 
analysts accessing these databases know that data marked with the SIGAD US984J and case 
notation XX.SQF* is FBI FISA data, and that all other data marked with SIGAD US-984* is NSA 
FISA data, and that this data should be classified TOP SECRET//COMINT - ECI RAGTIME// 
NOFORN. Ideally all FISA and non-FISA material should be held separately, and FBI and NSA 
FISA should be partitioned by individual target. The Office of Oversight and Compliance will work 
with S3 dataflow and Special Source Operations to correct the markings/classification of data at the 
front end. 

(S//SI) CES at NSAW will work to ensure that all individuals working the cryptanalysis mission at 
the CCs have the appropriate clearances for access to sensitive data, including RAGTIME, and will 
dictate specific policy and procedural security measures. 

REQUIREMENTS: (TS//SI//NF) Following recent meetings and discussions among SID Oversight 
and Compliance (SV) and NSAW CES, the following are recommendations and requirements that 
CES and the Cryptologic Centers should agree to implement prior to accessing, handling, 
processing, retaining, and disseminating NSA FISA and CT FBI FISA-derived collection. 

SY requirements: NSA/CSS TX, NSA/CSS GA, and NSA/CSS HI should commit to: 
1) (S//SI) The creation of a permanent FISA coordinator position, to be staffed initially by a 
person experienced with FISA procedures, to ensure compliance with FISA minimization 
procedures; build a culture and climate of FISA awareness; and facilitate on-site ability to train, 
field questions, and handle time-sensitive FISA issues. 

(S//SI) NSA/CSS TX has identified a permanent FISA coordinator; however that 
person has no FISA experience. The CES Mission Manager at TX, who has FISA experience, must 
perform oversight of CES activities and must participate in the new coordinator's FISA training. 
SID Oversight & Compliance will brief both individuals on their responsibilities. 
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(TS//SI//NF) NSA/CSS GA and NSA/CSS HI have permanent FISA coordinators who 
have been supporting the Counter terrorism analytic mission. CES must work with those persons to 
ensure oversight of CES activities. The FISA coordinators will ensure consistent FISA oversight 
across all Gryptologic Center activities. 

2) (S//SI) The creation of a core FISA workforce which, at all times, contains a stable body of 
personnel who ideally have at least one year's experience working FISA, A stable, non-transient 
workforce ensures a well-founded culture for FISA, as has been established at NSAW over many 
years. Such a culture minimizes the number of FISA-related violations by reinforeing the 
requirements, restrictions, and sensitivities of accessing and processing FISA, 

(S//SI) The CES Mission Managers at Texas, Georgia, and Hawaii have FISA 
experience and will have supervisory responsibilities over all CES employees at those sites, CES 
wiU ensure that all cryptanalysts at Texas, Georgia, and Hawaii will be trained on how to perform 
the CES mission and on how to handle sensitive materials; all will be knowledgeable about USSID 
SP0018 and Annex A that describes FISA handling. 

3) (StfSI) Provide assurances and documentation that the on-site physical layout of 
terminals and the means to secure the FISA material is such that access is restricted to only 
cleared personnel with a need for access to the FISA data, 

(S//SI) Seating for individuals performing the crypt analysis mission will be clustered 
together to ensure that they have visual and acoustical privacy for technical conversations and to 
ensure that their conversations and the data displayed on their computer screens is neither 
accessible nor viewable by those who do not have the appropriate clearances and a d need-to-know B . 
In addition, these individual will have one or more dedicated printers and combination safes for 
storage of any authorized FISA material, 

4) (S//SI) Provide assurances that FISA material will not be revealed or disseminated as part 
of site briefings or demonstrations, or in any other format, unless it conforms to and is handled in 
accordance with FISA Court requirements and minimization procedures approved by the Attorney 
General, and NSA dissemination policies and procedures, Due to the sensitivity of the sources and 
methods used to obtain this collection, it cannot be shared with site visitors or other uncleared 
personnel without proper minimization and attribution to protect those sources and methods. 

(S//SI) Except in exigent circumstances, all personnel that will have access to FISA material should 
receive initial OGC USSID SPQ018 and FBI FISA minimization briefings in person. The briefings 
given by OGC are interactive in nature and the personal setting gives OGC a better opportunity to 
interact with all participants. When in person briefings are not possible, briefings will be done via 
VTC- 

RECOMMENDATION; (U) SIGINT DIR concur on access with oversighl as described. 
SIGINT DIR'S DECISION: 



Concur 




Nonconcur: . Date; 

Oiher: Date: 
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4 August 2006 

TO: (U)SJGJNT Director 

SLX]?J: (5) Recommended Ruouircmums for Crypianalytfs ue 
CCs HI Te\as, Georgia and Hawaii Lo access NSA and FBI 
H$A material. 

( I S//SI) This request will set a precedes as no prior request 
for access io NSA FJSA rraieria! outside NSA W has been 
approved. NSA FISA hs SfGlNT derived fruit] NSA's ow:i 
submissions lo Hie US ITS A Court. An individual in KIJJ- 
Oversight and Compliance f.SV), in a personally sworn 
declaration to the US FJSA Court, assure* the Court that ail 
individuals, wherever located find in any job (linguist* 
erytpanalysl. reporter, collector, etc.), who access or use NSA 
I'JKA dujutj^I are trained and will comply villi «U NSA 
obligation* atladied to -.his sensitive access, 

( I S ;;S0 While SV supports the S3/C-ES build out to Ihc 
C"rypL(plo£ig Centers in principle* SV lias learned thai Iherc ait 
existing deficiencies id claSsilicalLOLi and handling of NSA 
MSA and FBI FISA maieritil in ChS's databases tiial must be 
addressed and funerl before additional access be the CCs is 

ap|J;-i?Vi:d. 

(TS//SJ) ft is vital that both NSA FiSA and FBTFISA material 
be properly ntvi separately identified so lhai I) users of that 
material know ihal (bey arc ELCecssing NSA FISA or FBI FLSA. 
and 2) NSA can remain in compliance wi[]i Department of 
Justice and all other obligations lor FISA handling find 
minimisation. It Is possible ihat Iherc are already FISA 
violations resulting Pom the way data lias been stored in these 
da;ahawm and it is critical that these problems Ik: fixed be lore 
ihc problems ore sp^id ro new IwniLc^^ , ^ 
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Cl^ SI) For example, the database FOUR5CORL and ZAP 
contain both NSA FISA and 1-fSI FISA that docs nor carry the 
Appropriate classification (all NSA and FBI FISA material 
must tarry the "T&VSl-JX-J KGT//NOFORJM2!)29l2y' 
clarification. FBI FISA should aJso be marked with Eire 
OGC-approvcd FBI FJSA banner,). Further, NSA FISA aiid 
FBI FISA materials are mined together within the databases, 
despite she duTurcjKcs in allowed rotcutiui; belwevn llie (wo 
versions of FISA, and both are missed will) rsun-FESA 
material. CfcS shouhi alio provide SV with an SOP clarify hie 
how access (by botli CHS und S2 target analysts J to these 
target folders is maintained, including what checks are m 
place tn verify user clearances to view NSA FISA and/or FBI 
FISA materia L 

(T$f'$t) If you support access in principle. I would 
recommend dial no action be taken to establish accounts at tlic 
CCs (or these CES databases unlit SV can ensure that I he 
issues of etasai ficat itm, partitioning and actvisiire resolved 
and any o.\isiinji FISA acctrss or retention violations Eire 
identified and cleared up. 

fl'S/vsi) Fun her, SV recoutmemta lltat this access not be 
approved until S3/CFS arid the Cryptoloptc Cenlt.-rs involved 
coordinate with the oITj jcs that sponsored the NSA FISA 
court orders and ajojec 10 the responsibilities lhai each will 
Itave relative to satisfy! tig the FISA minimization procedures 
<USSU> SPOOJ e, Annex A). This is necessary io ensure that 
all individuals who touch NSA Mi>A itaLcrial personally 
abide by K$A : s FISA handling and minimization 
requirements^ ensure that no one makes erroneous 
assumptions aboul wliat another office is doing vis-a-vis 
meeting those requircmems. and ensure that the NSA 
declarant can swear under oath that NSA abides by its 
ob Ligations. 
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